IT Analyst - IT Service Continuity, Washington

• Organization: World Bank
• Country: United States
• City: Washington
• Office: World Bank HQ Washington
• Follow @UNjobs

The World Bank | 1818 H St NW | Washington, DC 20006 | Tel: (202) 473-1000

Closing date: Monday, 12 September 2016

---

• Location Washington, DC
• Recruitment Type Local Hire
• Language Requirement English [Essential]
• Closing Date 12-Sep-2016

Background / General description
Innovation and partnership bond the five institutions of the World Bank Group (WBG): the International Bank for Reconstruction and Development (IBRD) and the International Development Association (IDA), which together form the World Bank; the International Finance Corporation (IFC); the Multilateral Investment Guarantee Agency (MIGA); and the International Centre for Settlement of Investment Disputes (ICSID). The World Bank Group is one of the world's largest sources of funding and knowledge for developing countries. It uses financial resources and extensive experience to help our client countries to reduce poverty, increase economic growth, and improve quality of life. To ensure that countries can access the best global expertise and help generate cutting-edge knowledge, the World Bank Group is constantly seeking to improve the way it works. Key priorities include delivering measurable results, promoting openness and transparency in development, and improving access to development information and data.
Information and Technology Solutions (ITS) enables the WBG to achieve its mission of ending extreme poverty by 2030 and boosting shared prosperity in a sustainable manner by delivering transformative information and technologies to its staff working in over 130 client countries. ITS services range from: establishing the infrastructure to reach and connect staff and development stakeholders; providing the devices and agile technology and information applications to facilitate the science of delivery through decentralized services; creating and maintaining tools to integrate information across the World Bank Group, the clients we serve and the countries where we operate; and delivering the computing power staff need to analyze development challenges and identify solutions. The ITS business model combines dedicated business solutions centers that provide services tailored to specific World Bank Group business needs and shared services that provide infrastructure, applications and platforms for the entire Group. ITS is one of three VPUs that have been brought together as the World Bank Group Integrated Services (WBGIS), to provide enhanced corporate core services and enable the institution to operate as one strategic and coordinated entity.
The ITS Information Security and Risk Management (ITSSR) unit, headed by the Chief Information Security Officer (CISO), provides leadership in managing the functions and activities of information security and risk management, IT service continuity, sourcing and vendor management, and cloud transformation across the World Bank Group, enabling the achievement of WBG's business objectives.
ITSSR is responsible for the following

• Enable and facilitate a risk aware culture, ensures that WBG information assets are protected in an effective, efficient, and balanced manner;
• Establish and maintain the World Bank Group's IT and information security policies and standards; develop and engineer the WBG's information security plans and solutions; respond to security incidents;
• Ensure IT security and risk management efforts throughout the World Bank Group are coordinated and aligned to the Bank's business and IT strategy, and managed in a consistent manner with the overall risk management approach and established risk appetite and tolerance;
• Drive transformational business performance, productivity, and cost efficiency through world class IT sourcing and vendor management practices to deliver world-class IT;
• Lead the WBG Cloud transformation to enable the business, promote agile IT delivery, and improve business resiliency;
• Optimize IT resiliency capabilities for People, Technology, Processes and Services to ensure support of WBG Business Continuity and Incident/Emergency response requirements.

The IT Service Continuity (ITSC) Program ensures resiliency of IT capabilities, including people, processes and technologies, necessary for continuity of time-critical business processes across the WBG in HQ and Country Offices. The key components of the program are: i) Planning technical, process and people capabilities, standards and policies to ensure the continued availability of time-critical WBG IT systems and services during business disruption; and providing project management coordination for the implementation and testing of those capabilities. ii) Implementing and improving IT emergency management response capabilities, including decision-making, communication and recovery activities; and iii) Identifying and tracking IT operational continuity risks and metrics and continuous improvement opportunities. To support business continuity for the World Bank Group, (IBRD, ICSID, MIGA, IDA, IFC) this program must operate in alignment with business counterparts in the WB Business Continuity Management units of both IFC and WB and with WBG corporate security.
Note: If the selected candidate is a current Bank Group staff member with a Regular or Open-Ended appointment, s/he will retain his/her Regular or Open-Ended appointment. All others will be offered a 2 year term appointment.
Duties and Accountabilities
This analyst position would coordinate one or more technical and process components of program building, including implementation, program reporting including metrics and opportunities for technical and process improvement. The position will also support program integration with the cloud program management office, including design of resiliency exercises incorporating a cloud or hybrid environment and client and vendor relation efforts to align some vendor hosted components into the testing program. The position reports to the ITSC Program Manager.
The IT Service Continuity (ITSC) business analyst will have the following accountabilities
Plan and Design ITSC Test Scenarios for Resilient Technology, Processes and Services

• Work with technical teams to design the resiliency exercises for the various technical components and systems that support time critical WBG business processes.
• Work with the technical teams and Cloud Program Management Office to identify exercise scenarios for systems implemented in the cloud or with cloud components.
• Coordinate and facilitate the planning and execution of technical and process exercises, including the cloud hosted scenarios.
• Complete post exercise reports that identify technical strengths, issues and opportunities for improvement.
• Review exercise outcomes with the technical teams to identify dependencies, points of failure, and other risks to WBG resiliency position and identify remedial action plans for tracking and reporting.
• Review the testing plans and risks identified with the technical teams for technical and process capability optimization
• Participate in preparation of annual ITS Emergency Management exercise
• Facilitate the reporting of disaster recovery, IT service continuity and emergency management response during a crisis event.
• Coordinate incident post mortems and reports.

IT Service Continuity Service BIA Compliance, Measurement and Reporting

• Participate in ITSC and WBG BC team joint effort to work with business to establish time criticality of IT systems and align practical recovery time objectives with business requirements.
• Coordinate with WBG Business Continuity teams to review semi-annual Business Continuity Plans and IT resource dependencies.
• Work with ITS departments to review ITS time-critical business processes, associated systems.
• Design and deliver metrics and reports that measure how IT infrastructure and business applications meet IT resiliency requirements to support business recovery time objectives.
• Write program status communications to management, business clients, stakeholders and auditors.

Continual Process Improvement

• Track operational risks related to business continuity and IT resiliency capabilities derived from exercises, incidents and risk assessments.
• Support development, execution and tracking of continuous improvement plans for our resiliency capabilities. These plans would be based on risk and metrics reports, changing inputs from the Business Continuity teams, and lessons learned from actual incidents.
• Implement improvements to IT Service Continuity processes, such as reporting, communication, incident escalation or others,
• Work with technical teams to track a fix for a technical shortcoming,
• Ensure appropriate documentation and tracking of improvement plan and action items.

Selection Criteria
The applicant must have a strong knowledge of industry best practices in IT Service Continuity process methodologies, Business Continuity and Business Impact Analysis knowledge. He/she will have experience working in the IT environment and some experience with implementing a new IT solution, process or service. Knowledge of ISO20000 and ISO27001 standard and the ITIL framework is essential. Broad knowledge of other business continuity, IT service continuity and disaster recovery industry standards and frameworks is a plus.
Education and Training

• Master's Degree in Business Management with an IT track or related field with 2 years' experience preferably in IT project or program management and governance in a multi-system, multi-platform, mid- to large enterprise IT organization. Bachelor's Degree is a minimum requirement with 4 years of relevant experience;
• Professional certification in IT Resiliency, DR or Service Continuity Planning, such as CBRITP or CBRM is required. Certification in Business Continuity Planning, such CBCP or MBCP with experience working in an IT environment can suffice.
• Professional qualification and certification in IT related business process and compliance standards and frameworks that include IT Disaster Recovery and Business Continuity as key components, eg ITIL, ISO20000, ISO27001, ISO22301, BS25999 etc.) preferred. PMP certification is a plus.

Technical Experience

• Previous experience coordinating Business Continuity, IT Service Continuity or Disaster Recovery planning and testing related to IT systems infrastructure and business applications;
• Demonstrated ability to understand Business Continuity management and requirements from an IT service continuity and IT disaster recovery perspective and address them in a responsive and comprehensive manner;
• Previous experience designing and documenting ITDR test plans, particularly for systems implemented in Public, Private cloud and hybrid environments.
• Ability to design business and technical processes to support an IT service continuity position for an organization; Some experience in implementing and maintaining these processes is essential.
• Knowledge of international regulations and standards related to financial services and information (IT) business continuity/risk management;
• Strong knowledge of broad range of hardware and software products;
• Understanding of data center operations, IT business application, system and infrastructure relationships and dependencies based on the OSI stack.

Project Management Experience and Interpersonal Skills

• Project management skills: ability to coordinate project planning and documentation, design, development and implementation of projects or project components;
• Proven conceptual, analytical and evaluation skills, including ability to prepare a high level report associated with outcomes of testing, project management and program implementation decisions;
• Excellent oral and written communication skills in the English language. Must be able to communicate efficiently and effectively with business partners and executive management;
• Demonstrated ability to design and produce a wide range of deliverables such as memoranda, requirements documents, status reports, terms of reference (TORs), project plans, etc.
• Ability to prepare, present, and defend/explain technical report information to diverse types of audience (management, users, vendor, and technical staff) in a way that establishes rapport and shares understanding.
• Ability to liaise with IT community to facilitate program management, reporting, IT resiliency testing, root cause analyses, and management of recovery issues;
• Strong administrative skills, with effectiveness in developing tasks to achieve target dates;
• Experience working in a large, complex global organization in an IT related field;
• Excellent interpersonal skills, including ability to work effectively in a team/task force as a participant or team leader.
• Demonstrated sensitivity to the Bank's distinctive demographics and cross cultural context and influences, including the ability to build effective work relationships with clients and colleagues;
• Initiative and resourcefulness in complex environments; flexibility and ability to prioritize conflicting demands in high-pressure and time-critical situations.